- Published: September 15, 2022
- Updated: September 15, 2022
- University / College: Columbia University
- Level: Doctor of Philosophy
- Language: English
- Downloads: 19
Case Study 2 – Sasser Worm
1. What lessons did the world learn in regards to critical infrastructure due to Sasser?
Sasser showed how vulnerable our networks and personal computers are. The most important lesson learnt from Sasser worm was to keep the patches up to date. This helps in reducing the vulnerability of the computers. Personal firewalls are very effective as they block access to such worms. Keeping the firewall turned on is very important. Many organizations woke up to the fact that they need to be prepared to avoid such a fiasco again. Detection and alert mechanisms need to be in place along with a defence plan (Dubrawsky, 2007).
2. How fast did Sasser spread? How fast were security professionals able to respond to the threat?
Sasser spread very rapidly. Sasser surfaced on the internet on April 30th and it had infected 500, 000 by May 1st and 700, 000 by May2. Security professionals were fast to respond and a free Sasser disinfection tool was posted by Microsoft on May 2. Nearly 1. 5 million copies of the tool were downloaded within 48 hours (InfoWorld, 2004).
3. Sasser came at the time of rolling blackouts in the Northeast U. S. in 2003. Many speculated that the virus attacked power plants and caused the blackouts. How did people react when they thought it was a virus?
People were shocked to know that a computer virus could cause such a physical reaction. For the layman, this was something new and more importantly unbelievable. Most people after the Sasser virus lost trust in the security of Windows Xp.
4. Do you believe Jaschan’s punishment fit his crime? What do you believe his intent was?
Jaschan’s punishment did not fit his crime. He had caused massive damage worldwide and had caused financial losses to big corporations apart from affecting home users. Even though he created virus when he was a minor, he had released the virus on his 18th birthday. Hence, he must have been tried as an adult and not a minor. The intent behind creating the virus is not clear but it is assumed that he created the virus with the intention of getting more business to his mother who ran a computer consultant company.
Works Cited
Dubrawsky, I. 2007. How to Cheat at Securing Your Network. MA: Syngress Publishing, Inc. Print.
InfoWorld. 2004. Sasser a Warning of Things to Come. Vol. 26, No. 19. 70 pages. 10 May 2004. Print.